Filtered by vendor Jooby
Subscriptions
Filtered by product Jooby
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-7647 | 1 Jooby | 1 Jooby | 2023-11-07 | 5.3 Medium |
| All versions before 1.6.7 and all versions after 2.0.0 inclusive and before 2.8.2 of io.jooby:jooby and org.jooby:jooby are vulnerable to Directory Traversal via two separate vectors. | ||||
| CVE-2020-7622 | 1 Jooby | 1 Jooby | 2021-08-03 | 9.8 Critical |
| This affects the package io.jooby:jooby-netty before 1.6.9, from 2.0.0 and before 2.2.1. The DefaultHttpHeaders is set to false which means it does not validates that the header isn't being abused for HTTP Response Splitting. | ||||
| CVE-2019-15477 | 1 Jooby | 1 Jooby | 2019-08-26 | N/A |
| Jooby before 1.6.4 has XSS via the default error handler. | ||||
Page 1 of 1.